Infopulse Standards Compliance Manager (Infopulse SCM) enables organizations to assess their current level of security and fundamentally simplifies implementation and management of compliance-related processes according to specific security and privacy requirements.
Infopulse SCM right side
The tool is a viable and efficient solution for IT Security and Privacy Officers, System Administrators, CEOs and CIOs.
Infopulse Standards Compliance Manager covers the entire Information Security Management System (ISMS) of a company — from establishing and implementing a security plan to getting ready for certification.
Standards & Highlights
Standards
With governance, compliance and risk management all in one system, Infopulse SCM is a modular tool designed to manage all regulatory or company-specific standards, policies and procedures.
These standards give a clear overview of the most important tasks of security management as a system. It provides assistance in implementing these recommendations in the form of the IT-Grundschutz methodology. The IT-Grundschutz methodology provides organizations of different sizes and types with clear-cut instructions as for building an information security management system as well as with specific safeguards related to its aspects.
ISO 27001
ISO 27001 is an international standard on information security management. The ISO 27001 provides normative specifications regarding the implementation, operation, and enhancement of a documented Information Security Management System (ISMS). It contains more than a hundred safeguards (controls) that are to be selected in consideration of the relevant risks.
ISO 27019
ISO/IEC 27019:2017 provides guidance for process control systems used by the energy utility industry for controlling and monitoring the production or generation, transmission, storage, distribution of electric power, gas, oil, heat; and for the control of associated supporting processes.
ISO 22301
ISO 22301 specifies security requirements related to Business Continuity and Disaster Recovery (BC/DR). It specifies requirements as to planning, establishing, implementing, maintaining and continually improving a BC/DR management system to protect against disruptive incidents.
The requirements specified in ISO 22301 are generic and intended to be applicable to all organizations of any type, size and nature.
ISO 14001
More and more companies are becoming socially responsible by building a robust environmental management system. The effective EMS is implemented on the basis of ISO 14001 that can be applied to any industry as well as type and size of a business. To maintain a successful strategy, companies should consider precise risks that would impact their performance, design and develop a plan that balances the requirements of the standard and the business needs of the company.
GDPR
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU).
The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies.
ASPICE
Automotive SPICE, or ASPICE, is the industry-specific standard adopted in automobile production to guide software development of embedded automotive systems under the new market demands for safety, environment protection and economic efficiency. Based on ISO/IEC 33004, ISO/IEC 12207, and ISO/IEC 15504 modified with industry-specific details, it is elaborated in two dimensions: the process and the process capability level.
Other standards
Infopulse SCM incorporates a number of other standards related to Information Security risk management polices (ISO 27005), IT service management (ISO 20000), efficiency and quality management (ISO 9001), Code of Conduct (ISO 27018), safety-related electronic and electrical systems (ISO 26262), etc.
We were looking for a GRC solution with a focus on multiple standards, support, data integration, and collaboration. We required a tool able to align basic rules, e.g., information security and privacy with our industry-specific standards (ASPICE in our case). It was quite a challenge, as large volumes of data in the company were handled manually - excel spreadsheets, word documents, and paper hard copies, all of that dispersed between several departments and people. Infopulse SCM enabled us to take back control, consolidate our data from different sources, track all the processes, and get an effective oversight mechanism for compliance and risk management.
Manfred L., Head of department
Membership
Request a trial
Try it!
Benefit of free usage of the Infopulse SCM for 3 months to find out how the solution can optimize and streamline your compliance management.
Please fill out this form, choose the standards and features you are most interested in. Our consultants will be glad to deliver a personalized webinar for you explaining step by step all the benefits of the SCM adoption.
Professional
Effective and easy-to-use IT security management system based on the latest standards and regulations — from planning and establishing the security concept to certification.